Multiplex communications – Pathfinding or routing – Switching a message which includes an address header
Patent
1995-11-03
1998-08-11
Olms, Douglas W.
Multiplex communications
Pathfinding or routing
Switching a message which includes an address header
370401, 370466, 39518701, H04J 324
Patent
active
057937630
ABSTRACT:
A system and method are provided for translating local IP addresses to globally unique IP addresses. This allows local hosts in an enterprise network to share global IP addresses from a limited pool of such addresses available to the enterprise. The translation is accomplished by replacing the source address in headers on packets destined for the Internet and by replacing destination address in headers on packets entering the local enterprise network from the Internet. Packets arriving from the Internet are screened by an adaptive security algorithm. According to this algorithm, packets are dropped and logged unless they are deemed nonthreatening. DNS packets and certain types of ICMP packets are allowed to enter local network. In addition, FTP data packets are allowed to enter the local network, but only after it has been established that their destination on the local network initiated an FTP session.
REFERENCES:
patent: 4962532 (1990-10-01), Kasiraj et al.
patent: 5159592 (1992-10-01), Perkins
patent: 5287103 (1994-02-01), Kasprzyk et al.
patent: 5371852 (1994-12-01), Attanasio et al.
patent: 5430715 (1995-07-01), Corbalis et al.
patent: 5477531 (1995-12-01), McKee et al.
patent: 5513337 (1996-04-01), Gillespie et al.
patent: 5550984 (1996-08-01), Gelb
patent: 5623601 (1997-04-01), Vu
Internet posting for Test Sites to Beta Test an IP Address Translation product; posted on firewalls mailing list: posting made on or after Oct. 28,1994.
Y. Reckhter, B., Moskowitz, D. Karrenberg, and G. de Groot, "Address Allocation for Private Internets, " RFC 1597, T.J. Watson Research Center, IBM. Corp., Chrysler Corp., RIPE NCC, Mar. 1994.
K. Egevang and P. Francis, "The IP Network Address Translator (NAT)," RFC 1631, Cray Communications, NTT, May. 1994.
Coile Brantley W.
Mayes John C.
Cisco Technology Inc.
Hom Shick
Olms Douglas W.
LandOfFree
Security system for network address translation systems does not yet have a rating. At this time, there are no reviews or comments for this patent.
If you have personal experience with Security system for network address translation systems, we encourage you to share that experience with our LandOfFree.com community. Your opinion is very important and Security system for network address translation systems will most certainly appreciate the feedback.
Profile ID: LFUS-PAI-O-397110